You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cxf.apache.org by santhosh00724 <sa...@gmail.com> on 2009/03/27 18:30:13 UTC
WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
I am getting following error while running a service with multiple clients
with "Timestamp Signature Encrypt " action for the interceptor & <entry
key="encryptionUser" value="useReqSigCert"/>
It works fine for single client scenario. but not for multiple clients. I
looked into many mailing lists but couldn't find any information. It is a
two way encryption on both service & client side.
Environment :
Tomcat, CXF 2.1.3.
Mar 24, 2009 12:40:29 PM org.apache.cxf.transport.servlet.AbstractCXFServlet
replaceDestinationFactory
INFO: Servlet transport factory already registered
Mar 24, 2009 12:40:29 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor
handleMessage
WARNING:
org.apache.ws.security.WSSecurityException: General security error
(WSSecurityEngine: Callback supplied no password for: null)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:285)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:92)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:80)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:311)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:228)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:158)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:65)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:220)
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:78)
at
org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestination.java:92)
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:285)
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:168)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFServlet.java:175)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFServlet.java:153)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
Mar 24, 2009 12:40:30 PM org.apache.cxf.phase.PhaseInterceptorChain
doIntercept
INFO: Interceptor has thrown exception, unwinding now
org.apache.cxf.binding.soap.SoapFault: General security error
(WSSecurityEngine: Callback supplied no password for: null)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.createSoapFault(WSS4JInInterceptor.java:407)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:256)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:65)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:220)
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:78)
at
org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestination.java:92)
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:285)
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:168)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFServlet.java:175)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFServlet.java:153)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
Caused by: org.apache.ws.security.WSSecurityException: General security
error (WSSecurityEngine: Callback supplied no password for: null)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:285)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:92)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:80)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:311)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:228)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:158)
... 22 more
Mar 24, 2009 12:51:09 PM org.apache.coyote.http11.Http11Protocol pause
--
View this message in context: http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-client-scenario.-tp22745189p22745189.html
Sent from the cxf-dev mailing list archive at Nabble.com.
Re: WSSecurityEngine: Callback supplied no password for: null when using useReqSigCert for encryptionUser in multiple client scenario.
Posted by Daniel Kulp <dk...@apache.org>.
Log a JIRA with a patch? :-)
Dan
On Tue June 16 2009 1:05:01 pm Jim Hansen wrote:
> I did some debugging and discovered that the RECV_RESULTS are not found in
> the right place. My fix (probably not the best fix) is to override
> getProperty() on the WSS4JOutInterceptor class as follows:
>
>
> @Override
> public Object getProperty(Object msgContext, String key)
> {
> // use the superclass first
> Object result = super.getProperty(msgContext, key);
>
> // handle the special case of the RECV_RESULTS
> if (result == null && key == WSHandlerConstants.RECV_RESULTS)
> {
> result = ((Message) msgContext).getExchange().getInMessage().get(key);
> }
>
> return result;
> }
>
> So it appears that the RECV_RESULTS are present, but they are in the
> Exchange.getInMessage(), which is not being searched by
> WSS4JOutInterceptor.getProperty().
>
> I’m using CXF 2.2.2 and wss4j-1.5.7.jar.
>
> santhosh00724 wrote:
> > Did any tried it. I am trying but not able to make any progress. The code
> > that is throwing exception is in
> >
> > WSS4JOutInterceptor.java Line:220
> >
> > doSenderAction(doAction, doc, reqData, actions, Boolean.TRUE
> > .equals(getProperty(mc,
> > org.apache.cxf.message.Message.REQUESTOR_ROLE)));
> >
> > Or can one suggest other alternatives for using multiple clients.
> >
> > dkulp wrote:
> >> The RECV_RESULTS is the vector of result things that should have been
> >> saved
> >> from the INCOMING message. Basically, the WSS4JInInterceptor should
> >> have
> >> saved that someplace where the OUT interceptor can grab it.
> >>
> >> Dan
> >>
> >> On Wed April 1 2009 9:31:52 am santhosh00724 wrote:
> >>> I was debugging the code with WSS4J 1.5.6 version. When the control
> >>> goes into the WSHandler's function
> >>>
> >>> private void handleSpecialUser(RequestData reqData) {
> >>> if
> >>> (!WSHandlerConstants.USE_REQ_SIG_CERT.equals(reqData.getEncUser())) {
> >>> return;
> >>> }
> >>> Vector results =
> >>> (Vector) getProperty(reqData.getMsgContext(),
> >>> WSHandlerConstants.RECV_RESULTS); if (results == null) {
> >>> return;
> >>> }
> >>>
> >>>
> >>>
> >>> I am getting results vector as null and the function is not executed
> >>> properly. Can any one from CXF dev explain what this results vector
> >>> should
> >>> contain and why is it returning null. I am trying to fix it if there is
> >>> no
> >>> patch for cxf to handle multiple clients .. please help..
> >>>
> >>> Santhosh.
> >>>
> >>> santhosh00724 wrote:
> >>> > Thank you for reply,
> >>> >
> >>> > This is what I am getting now. I am using CXF 2.1.3. is this a
> >>>
> >>> problem. I
> >>>
> >>> > tried using CXF 2.2 & 2.1.4 I am getting :
> >>> > java.lang.ClassNotFoundException:
> >>> > org.springframework.context.support.AbstractRefres
> >>> > hableConfigApplicationContext
> >>> >
> >>> > Santhosh.
> >>> >
> >>> > Original Exception with CXF 2.1.3:
> >>> > org.apache.ws.security.WSSecurityException: Error during encryption:
> >>> > ; nested exception is:
> >>> > org.apache.ws.security.WSSecurityException: General security
> >>> > error (No certificates for user useReqSigCert were found for
> >>>
> >>> encryption)
> >>>
> >>> > at
> >>>
> >>> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction
> >>>.j
> >>>
> >>> >ava:64) at
> >>>
> >>> org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:
> >>>20
> >>>
> >>> >1) at
> >>>
> >>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOu
> >>>tI
> >>>
> >>> >nterceptor.java:47) at
> >>>
> >>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutIntercepto
> >>>rI
> >>>
> >>> >nternal.handleMessage(WSS4JOutInterceptor.java:219) at
> >>>
> >>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutIntercepto
> >>>rI
> >>>
> >>> >nternal.handleMessage(WSS4JOutInterceptor.java:107) at
> >>>
> >>> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptor
> >>>Ch
> >>>
> >>> >ain.java:220) at
> >>>
> >>> org.apache.cxf.interceptor.OutgoingChainInterceptor.handleMessage(Outgo
> >>>in
> >>>
> >>> >gChainInterceptor.java:74) at
> >>>
> >>> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptor
> >>>Ch
> >>>
> >>> >ain.java:220) at
> >>>
> >>> org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiat
> >>>io
> >>>
> >>> >nObserver.java:78) at
> >>>
> >>> org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDesti
> >>>na
> >>>
> >>> >tion.java:92) at
> >>>
> >>> org.apache.cxf.transport.servlet.ServletController.invokeDestination(Se
> >>>rv
> >>>
> >>> >letController.java:285) at
> >>>
> >>> org.apache.cxf.transport.servlet.ServletController.invoke(ServletContro
> >>>ll
> >>>
> >>> >er.java:168) at
> >>>
> >>> org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFS
> >>>er
> >>>
> >>> >vlet.java:175) at
> >>>
> >>> org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFS
> >>>er
> >>>
> >>> >vlet.java:153) at
> >>> > javax.servlet.http.HttpServlet.service(HttpServlet.java:637) at
> >>> > javax.servlet.http.HttpServlet.service(HttpServlet.java:717) at
> >>>
> >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applic
> >>>at
> >>>
> >>> >ionFilterChain.java:290) at
> >>>
> >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFil
> >>>te
> >>>
> >>> >rChain.java:206) at
> >>>
> >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperVal
> >>>ve
> >>>
> >>> >.java:233) at
> >>>
> >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextVal
> >>>ve
> >>>
> >>> >.java:191) at
> >>>
> >>>
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
> >>> >128) at
> >>>
> >>>
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
> >>> >102) at
> >>>
> >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve
> >>>.j
> >>>
> >>> >ava:109) at
> >>>
> >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:
> >>>28
> >>>
> >>> >6) at
> >>>
> >>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:8
> >>>45
> >>>
> >>> >) at
> >>>
> >>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process
> >>>(H
> >>>
> >>> >ttp11Protocol.java:583) at
> >>>
> >>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> >>>
> >>> > at java.lang.Thread.run(Thread.java:619)
> >>> > Caused by: org.apache.ws.security.WSSecurityException: General
> >>>
> >>> security
> >>>
> >>> > error (No certificates for user useReqSigCert were found for
> >>>
> >>> encryption)
> >>>
> >>> > at
> >>>
> >>> org.apache.ws.security.message.WSSecEncrypt.prepare(WSSecEncrypt.java:2
> >>>48
> >>>
> >>> >) at
> >>>
> >>> org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:288
> >>>)
> >>>
> >>> > at
> >>>
> >>> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction
> >>>.j
> >>>
> >>> >ava:62) ... 27 more
> >>> >
> >>> > Colm O hEigeartaigh wrote:
> >>> >> Hi,
> >>> >>
> >>> >> Can you try again, except this time using a SNAPSHOT version of
> >>> >> WSS4J available here:
> >>> >>
> >>> >> http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
> >>> >>
> >>> >> Dan Kulp made some fixes lately for some multi-threaded problems
> >>> >> that are included in the SNAPSHOT...this *may* be causing the
> >>> >> problem.
> >>> >>
> >>> >> Colm.
> >>
> >> --
> >> Daniel Kulp
> >> dkulp@apache.org
> >> http://www.dankulp.com/blog
--
Daniel Kulp
dkulp@apache.org
http://www.dankulp.com/blog
Re: WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
Posted by Jim Hansen <ji...@elavon.com>.
I did some debugging and discovered that the RECV_RESULTS are not found in
the right place. My fix (probably not the best fix) is to override
getProperty() on the WSS4JOutInterceptor class as follows:
@Override
public Object getProperty(Object msgContext, String key)
{
// use the superclass first
Object result = super.getProperty(msgContext, key);
// handle the special case of the RECV_RESULTS
if (result == null && key == WSHandlerConstants.RECV_RESULTS)
{
result = ((Message) msgContext).getExchange().getInMessage().get(key);
}
return result;
}
So it appears that the RECV_RESULTS are present, but they are in the
Exchange.getInMessage(), which is not being searched by
WSS4JOutInterceptor.getProperty().
I’m using CXF 2.2.2 and wss4j-1.5.7.jar.
santhosh00724 wrote:
>
> Did any tried it. I am trying but not able to make any progress. The code
> that is throwing exception is in
>
> WSS4JOutInterceptor.java Line:220
>
> doSenderAction(doAction, doc, reqData, actions, Boolean.TRUE
> .equals(getProperty(mc,
> org.apache.cxf.message.Message.REQUESTOR_ROLE)));
>
> Or can one suggest other alternatives for using multiple clients.
>
>
> dkulp wrote:
>>
>>
>> The RECV_RESULTS is the vector of result things that should have been
>> saved
>> from the INCOMING message. Basically, the WSS4JInInterceptor should
>> have
>> saved that someplace where the OUT interceptor can grab it.
>>
>> Dan
>>
>>
>> On Wed April 1 2009 9:31:52 am santhosh00724 wrote:
>>> I was debugging the code with WSS4J 1.5.6 version. When the control goes
>>> into the WSHandler's function
>>>
>>> private void handleSpecialUser(RequestData reqData) {
>>> if
>>> (!WSHandlerConstants.USE_REQ_SIG_CERT.equals(reqData.getEncUser())) {
>>> return;
>>> }
>>> Vector results =
>>> (Vector) getProperty(reqData.getMsgContext(),
>>> WSHandlerConstants.RECV_RESULTS); if (results == null) {
>>> return;
>>> }
>>>
>>>
>>>
>>> I am getting results vector as null and the function is not executed
>>> properly. Can any one from CXF dev explain what this results vector
>>> should
>>> contain and why is it returning null. I am trying to fix it if there is
>>> no
>>> patch for cxf to handle multiple clients .. please help..
>>>
>>> Santhosh.
>>>
>>> santhosh00724 wrote:
>>> > Thank you for reply,
>>> >
>>> > This is what I am getting now. I am using CXF 2.1.3. is this a
>>> problem. I
>>> > tried using CXF 2.2 & 2.1.4 I am getting :
>>> > java.lang.ClassNotFoundException:
>>> > org.springframework.context.support.AbstractRefres
>>> > hableConfigApplicationContext
>>> >
>>> > Santhosh.
>>> >
>>> > Original Exception with CXF 2.1.3:
>>> > org.apache.ws.security.WSSecurityException: Error during encryption: ;
>>> > nested exception is:
>>> > org.apache.ws.security.WSSecurityException: General security
>>> > error (No certificates for user useReqSigCert were found for
>>> encryption)
>>> > at
>>> >
>>> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.j
>>> >ava:64) at
>>> >
>>> org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:20
>>> >1) at
>>> >
>>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOutI
>>> >nterceptor.java:47) at
>>> >
>>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorI
>>> >nternal.handleMessage(WSS4JOutInterceptor.java:219) at
>>> >
>>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorI
>>> >nternal.handleMessage(WSS4JOutInterceptor.java:107) at
>>> >
>>> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorCh
>>> >ain.java:220) at
>>> >
>>> org.apache.cxf.interceptor.OutgoingChainInterceptor.handleMessage(Outgoin
>>> >gChainInterceptor.java:74) at
>>> >
>>> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorCh
>>> >ain.java:220) at
>>> >
>>> org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiatio
>>> >nObserver.java:78) at
>>> >
>>> org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestina
>>> >tion.java:92) at
>>> >
>>> org.apache.cxf.transport.servlet.ServletController.invokeDestination(Serv
>>> >letController.java:285) at
>>> >
>>> org.apache.cxf.transport.servlet.ServletController.invoke(ServletControll
>>> >er.java:168) at
>>> >
>>> org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFSer
>>> >vlet.java:175) at
>>> >
>>> org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFSer
>>> >vlet.java:153) at
>>> > javax.servlet.http.HttpServlet.service(HttpServlet.java:637) at
>>> > javax.servlet.http.HttpServlet.service(HttpServlet.java:717) at
>>> >
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicat
>>> >ionFilterChain.java:290) at
>>> >
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilte
>>> >rChain.java:206) at
>>> >
>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve
>>> >.java:233) at
>>> >
>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve
>>> >.java:191) at
>>> >
>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
>>> >128) at
>>> >
>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
>>> >102) at
>>> >
>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.j
>>> >ava:109) at
>>> >
>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:28
>>> >6) at
>>> >
>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845
>>> >) at
>>> >
>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(H
>>> >ttp11Protocol.java:583) at
>>> >
>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>> > at java.lang.Thread.run(Thread.java:619)
>>> > Caused by: org.apache.ws.security.WSSecurityException: General
>>> security
>>> > error (No certificates for user useReqSigCert were found for
>>> encryption)
>>> > at
>>> >
>>> org.apache.ws.security.message.WSSecEncrypt.prepare(WSSecEncrypt.java:248
>>> >) at
>>> >
>>> org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:288)
>>> > at
>>> >
>>> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.j
>>> >ava:62) ... 27 more
>>> >
>>> > Colm O hEigeartaigh wrote:
>>> >> Hi,
>>> >>
>>> >> Can you try again, except this time using a SNAPSHOT version of WSS4J
>>> >> available here:
>>> >>
>>> >> http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
>>> >>
>>> >> Dan Kulp made some fixes lately for some multi-threaded problems that
>>> >> are included in the SNAPSHOT...this *may* be causing the problem.
>>> >>
>>> >> Colm.
>>
>> --
>> Daniel Kulp
>> dkulp@apache.org
>> http://www.dankulp.com/blog
>>
>>
>
>
--
View this message in context: http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-client-scenario.-tp22745189p24058681.html
Sent from the cxf-dev mailing list archive at Nabble.com.
Re: WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
Posted by santhosh00724 <sa...@gmail.com>.
Did any tried it. I am trying but not able to make any progress. The code
that is throwing exception is in
WSS4JOutInterceptor.java Line:220
doSenderAction(doAction, doc, reqData, actions, Boolean.TRUE
.equals(getProperty(mc,
org.apache.cxf.message.Message.REQUESTOR_ROLE)));
Or can one suggest other alternatives for using multiple clients.
dkulp wrote:
>
>
> The RECV_RESULTS is the vector of result things that should have been
> saved
> from the INCOMING message. Basically, the WSS4JInInterceptor should have
> saved that someplace where the OUT interceptor can grab it.
>
> Dan
>
>
> On Wed April 1 2009 9:31:52 am santhosh00724 wrote:
>> I was debugging the code with WSS4J 1.5.6 version. When the control goes
>> into the WSHandler's function
>>
>> private void handleSpecialUser(RequestData reqData) {
>> if
>> (!WSHandlerConstants.USE_REQ_SIG_CERT.equals(reqData.getEncUser())) {
>> return;
>> }
>> Vector results =
>> (Vector) getProperty(reqData.getMsgContext(),
>> WSHandlerConstants.RECV_RESULTS); if (results == null) {
>> return;
>> }
>>
>>
>>
>> I am getting results vector as null and the function is not executed
>> properly. Can any one from CXF dev explain what this results vector
>> should
>> contain and why is it returning null. I am trying to fix it if there is
>> no
>> patch for cxf to handle multiple clients .. please help..
>>
>> Santhosh.
>>
>> santhosh00724 wrote:
>> > Thank you for reply,
>> >
>> > This is what I am getting now. I am using CXF 2.1.3. is this a problem.
>> I
>> > tried using CXF 2.2 & 2.1.4 I am getting :
>> > java.lang.ClassNotFoundException:
>> > org.springframework.context.support.AbstractRefres
>> > hableConfigApplicationContext
>> >
>> > Santhosh.
>> >
>> > Original Exception with CXF 2.1.3:
>> > org.apache.ws.security.WSSecurityException: Error during encryption: ;
>> > nested exception is:
>> > org.apache.ws.security.WSSecurityException: General security
>> > error (No certificates for user useReqSigCert were found for
>> encryption)
>> > at
>> >
>> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.j
>> >ava:64) at
>> >
>> org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:20
>> >1) at
>> >
>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOutI
>> >nterceptor.java:47) at
>> >
>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorI
>> >nternal.handleMessage(WSS4JOutInterceptor.java:219) at
>> >
>> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorI
>> >nternal.handleMessage(WSS4JOutInterceptor.java:107) at
>> >
>> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorCh
>> >ain.java:220) at
>> >
>> org.apache.cxf.interceptor.OutgoingChainInterceptor.handleMessage(Outgoin
>> >gChainInterceptor.java:74) at
>> >
>> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorCh
>> >ain.java:220) at
>> >
>> org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiatio
>> >nObserver.java:78) at
>> >
>> org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestina
>> >tion.java:92) at
>> >
>> org.apache.cxf.transport.servlet.ServletController.invokeDestination(Serv
>> >letController.java:285) at
>> >
>> org.apache.cxf.transport.servlet.ServletController.invoke(ServletControll
>> >er.java:168) at
>> >
>> org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFSer
>> >vlet.java:175) at
>> >
>> org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFSer
>> >vlet.java:153) at
>> > javax.servlet.http.HttpServlet.service(HttpServlet.java:637) at
>> > javax.servlet.http.HttpServlet.service(HttpServlet.java:717) at
>> >
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicat
>> >ionFilterChain.java:290) at
>> >
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilte
>> >rChain.java:206) at
>> >
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve
>> >.java:233) at
>> >
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve
>> >.java:191) at
>> >
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
>> >128) at
>> >
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
>> >102) at
>> >
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.j
>> >ava:109) at
>> >
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:28
>> >6) at
>> >
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845
>> >) at
>> >
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(H
>> >ttp11Protocol.java:583) at
>> > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> > at java.lang.Thread.run(Thread.java:619)
>> > Caused by: org.apache.ws.security.WSSecurityException: General security
>> > error (No certificates for user useReqSigCert were found for
>> encryption)
>> > at
>> >
>> org.apache.ws.security.message.WSSecEncrypt.prepare(WSSecEncrypt.java:248
>> >) at
>> >
>> org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:288)
>> > at
>> >
>> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.j
>> >ava:62) ... 27 more
>> >
>> > Colm O hEigeartaigh wrote:
>> >> Hi,
>> >>
>> >> Can you try again, except this time using a SNAPSHOT version of WSS4J
>> >> available here:
>> >>
>> >> http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
>> >>
>> >> Dan Kulp made some fixes lately for some multi-threaded problems that
>> >> are included in the SNAPSHOT...this *may* be causing the problem.
>> >>
>> >> Colm.
>
> --
> Daniel Kulp
> dkulp@apache.org
> http://www.dankulp.com/blog
>
>
--
View this message in context: http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-client-scenario.-tp22745189p23158844.html
Sent from the cxf-dev mailing list archive at Nabble.com.
Re: WSSecurityEngine: Callback supplied no password for: null when using useReqSigCert for encryptionUser in multiple client scenario.
Posted by Daniel Kulp <dk...@apache.org>.
The RECV_RESULTS is the vector of result things that should have been saved
from the INCOMING message. Basically, the WSS4JInInterceptor should have
saved that someplace where the OUT interceptor can grab it.
Dan
On Wed April 1 2009 9:31:52 am santhosh00724 wrote:
> I was debugging the code with WSS4J 1.5.6 version. When the control goes
> into the WSHandler's function
>
> private void handleSpecialUser(RequestData reqData) {
> if
> (!WSHandlerConstants.USE_REQ_SIG_CERT.equals(reqData.getEncUser())) {
> return;
> }
> Vector results =
> (Vector) getProperty(reqData.getMsgContext(),
> WSHandlerConstants.RECV_RESULTS); if (results == null) {
> return;
> }
>
>
>
> I am getting results vector as null and the function is not executed
> properly. Can any one from CXF dev explain what this results vector should
> contain and why is it returning null. I am trying to fix it if there is no
> patch for cxf to handle multiple clients .. please help..
>
> Santhosh.
>
> santhosh00724 wrote:
> > Thank you for reply,
> >
> > This is what I am getting now. I am using CXF 2.1.3. is this a problem. I
> > tried using CXF 2.2 & 2.1.4 I am getting :
> > java.lang.ClassNotFoundException:
> > org.springframework.context.support.AbstractRefres
> > hableConfigApplicationContext
> >
> > Santhosh.
> >
> > Original Exception with CXF 2.1.3:
> > org.apache.ws.security.WSSecurityException: Error during encryption: ;
> > nested exception is:
> > org.apache.ws.security.WSSecurityException: General security
> > error (No certificates for user useReqSigCert were found for encryption)
> > at
> > org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.j
> >ava:64) at
> > org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:20
> >1) at
> > org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOutI
> >nterceptor.java:47) at
> > org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorI
> >nternal.handleMessage(WSS4JOutInterceptor.java:219) at
> > org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorI
> >nternal.handleMessage(WSS4JOutInterceptor.java:107) at
> > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorCh
> >ain.java:220) at
> > org.apache.cxf.interceptor.OutgoingChainInterceptor.handleMessage(Outgoin
> >gChainInterceptor.java:74) at
> > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorCh
> >ain.java:220) at
> > org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiatio
> >nObserver.java:78) at
> > org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestina
> >tion.java:92) at
> > org.apache.cxf.transport.servlet.ServletController.invokeDestination(Serv
> >letController.java:285) at
> > org.apache.cxf.transport.servlet.ServletController.invoke(ServletControll
> >er.java:168) at
> > org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFSer
> >vlet.java:175) at
> > org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFSer
> >vlet.java:153) at
> > javax.servlet.http.HttpServlet.service(HttpServlet.java:637) at
> > javax.servlet.http.HttpServlet.service(HttpServlet.java:717) at
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicat
> >ionFilterChain.java:290) at
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilte
> >rChain.java:206) at
> > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve
> >.java:233) at
> > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve
> >.java:191) at
> > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
> >128) at
> > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
> >102) at
> > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.j
> >ava:109) at
> > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:28
> >6) at
> > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845
> >) at
> > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(H
> >ttp11Protocol.java:583) at
> > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> > at java.lang.Thread.run(Thread.java:619)
> > Caused by: org.apache.ws.security.WSSecurityException: General security
> > error (No certificates for user useReqSigCert were found for encryption)
> > at
> > org.apache.ws.security.message.WSSecEncrypt.prepare(WSSecEncrypt.java:248
> >) at
> > org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:288)
> > at
> > org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.j
> >ava:62) ... 27 more
> >
> > Colm O hEigeartaigh wrote:
> >> Hi,
> >>
> >> Can you try again, except this time using a SNAPSHOT version of WSS4J
> >> available here:
> >>
> >> http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
> >>
> >> Dan Kulp made some fixes lately for some multi-threaded problems that
> >> are included in the SNAPSHOT...this *may* be causing the problem.
> >>
> >> Colm.
--
Daniel Kulp
dkulp@apache.org
http://www.dankulp.com/blog
RE: WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
Posted by santhosh00724 <sa...@gmail.com>.
I was debugging the code with WSS4J 1.5.6 version. When the control goes into
the WSHandler's function
private void handleSpecialUser(RequestData reqData) {
if
(!WSHandlerConstants.USE_REQ_SIG_CERT.equals(reqData.getEncUser())) {
return;
}
Vector results =
(Vector) getProperty(reqData.getMsgContext(),
WSHandlerConstants.RECV_RESULTS); if (results == null) {
return;
}
I am getting results vector as null and the function is not executed
properly. Can any one from CXF dev explain what this results vector should
contain and why is it returning null. I am trying to fix it if there is no
patch for cxf to handle multiple clients .. please help..
Santhosh.
santhosh00724 wrote:
>
> Thank you for reply,
>
> This is what I am getting now. I am using CXF 2.1.3. is this a problem. I
> tried using CXF 2.2 & 2.1.4 I am getting :
> java.lang.ClassNotFoundException:
> org.springframework.context.support.AbstractRefres
> hableConfigApplicationContext
>
> Santhosh.
>
> Original Exception with CXF 2.1.3:
> org.apache.ws.security.WSSecurityException: Error during encryption: ;
> nested exception is:
> org.apache.ws.security.WSSecurityException: General security error
> (No certificates for user useReqSigCert were found for encryption)
> at
> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.java:64)
> at
> org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:201)
> at
> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOutInterceptor.java:47)
> at
> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorInternal.handleMessage(WSS4JOutInterceptor.java:219)
> at
> org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorInternal.handleMessage(WSS4JOutInterceptor.java:107)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:220)
> at
> org.apache.cxf.interceptor.OutgoingChainInterceptor.handleMessage(OutgoingChainInterceptor.java:74)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:220)
> at
> org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:78)
> at
> org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestination.java:92)
> at
> org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:285)
> at
> org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:168)
> at
> org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFServlet.java:175)
> at
> org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFServlet.java:153)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845)
> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> at java.lang.Thread.run(Thread.java:619)
> Caused by: org.apache.ws.security.WSSecurityException: General security
> error (No certificates for user useReqSigCert were found for encryption)
> at
> org.apache.ws.security.message.WSSecEncrypt.prepare(WSSecEncrypt.java:248)
> at
> org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:288)
> at
> org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.java:62)
> ... 27 more
>
>
> Colm O hEigeartaigh wrote:
>>
>> Hi,
>>
>> Can you try again, except this time using a SNAPSHOT version of WSS4J
>> available here:
>>
>> http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
>>
>> Dan Kulp made some fixes lately for some multi-threaded problems that
>> are included in the SNAPSHOT...this *may* be causing the problem.
>>
>> Colm.
>>
>>
>>
>
>
--
View this message in context: http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-client-scenario.-tp22745189p22826466.html
Sent from the cxf-dev mailing list archive at Nabble.com.
RE: WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
Posted by santhosh00724 <sa...@gmail.com>.
Thank you for reply,
This is what I am getting now. I am using CXF 2.1.3. is this a problem. I
tried using CXF 2.2 & 2.1.4 I am getting : java.lang.ClassNotFoundException:
org.springframework.context.support.AbstractRefres
hableConfigApplicationContext
Santhosh.
Original Exception with CXF 2.1.3:
org.apache.ws.security.WSSecurityException: Error during encryption: ;
nested exception is:
org.apache.ws.security.WSSecurityException: General security error
(No certificates for user useReqSigCert were found for encryption)
at
org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.java:64)
at
org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:201)
at
org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOutInterceptor.java:47)
at
org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorInternal.handleMessage(WSS4JOutInterceptor.java:219)
at
org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorInternal.handleMessage(WSS4JOutInterceptor.java:107)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:220)
at
org.apache.cxf.interceptor.OutgoingChainInterceptor.handleMessage(OutgoingChainInterceptor.java:74)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:220)
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:78)
at
org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestination.java:92)
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:285)
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:168)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFServlet.java:175)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFServlet.java:153)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
at
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
Caused by: org.apache.ws.security.WSSecurityException: General security
error (No certificates for user useReqSigCert were found for encryption)
at
org.apache.ws.security.message.WSSecEncrypt.prepare(WSSecEncrypt.java:248)
at
org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:288)
at
org.apache.ws.security.action.EncryptionAction.execute(EncryptionAction.java:62)
... 27 more
Colm O hEigeartaigh wrote:
>
> Hi,
>
> Can you try again, except this time using a SNAPSHOT version of WSS4J
> available here:
>
> http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
>
> Dan Kulp made some fixes lately for some multi-threaded problems that
> are included in the SNAPSHOT...this *may* be causing the problem.
>
> Colm.
>
>
>
--
View this message in context: http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-client-scenario.-tp22745189p22789814.html
Sent from the cxf-dev mailing list archive at Nabble.com.
RE: WSSecurityEngine: Callback supplied no password for: null when using useReqSigCert for encryptionUser in multiple client scenario.
Posted by Colm O hEigeartaigh <co...@progress.com>.
Hi,
Can you try again, except this time using a SNAPSHOT version of WSS4J
available here:
http://people.apache.org/~coheigea/stage/wss4j/1.5.7-SNAPSHOT/
Dan Kulp made some fixes lately for some multi-threaded problems that
are included in the SNAPSHOT...this *may* be causing the problem.
Colm.
-----Original Message-----
From: santhosh00724 [mailto:santhosh00724@gmail.com]
Sent: 30 March 2009 14:05
To: dev@cxf.apache.org
Subject: RE: WSSecurityEngine: Callback supplied no password for: null
when using useReqSigCert for encryptionUser in multiple client scenario.
My Client Config :
<bean id="wss4jOut"
class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature
Encrypt"/>
<entry key="user" value="myclientkey"/>
<entry key="signaturePropFile"
value="clientKeystore.properties"/>
<entry key="encryptionPropFile"
value="clientKeystore.properties"/>
<entry key="encryptionUser" value="myclientkey"/>
<entry key="signatureKeyIdentifier"
value="DirectReference"/>
<entry key="passwordCallbackRef"
value-ref="clientKeystorePassword"/>
<!--<entry key="passwordCallbackClass"
value="edu.osu.oit.peoplesoft.webservice.ClientKeystorePasswordCallback"
/>-->
<entry key="signatureParts"
value="{Element}{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss
-wssecurity-utility-1.0.xsd}Timestamp;{Element}{http://schemas.xmlsoap.o
rg/soap/envelope/}Body"/>
<entry key="encryptionParts"
value="{Element}{http://www.w3.org/2000/09/xmldsig#}Signature;{Content}{
http://schemas.xmlsoap.org/soap/envelope/}Body"/>
<entry key="encryptionSymAlgorithm"
value="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
</map>
</constructor-arg>
</bean>
<bean id="wss4jIn"
class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor" >
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature
Encrypt"/>
<entry key="signaturePropFile"
value="clientKeystore.properties"/>
<entry key="decryptionPropFile"
value="clientKeystore.properties"/>
<entry key="passwordCallbackRef"
value-ref="clientKeystorePassword"/>
</map>
</constructor-arg>
</bean>
Service Configurations:
<bean id="wss4jInterceptor"
class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature
Encrypt"/>
<entry key="signaturePropFile"
value="serviceKeystore.properties"/>
<entry key="decryptionPropFile"
value="serviceKeystore.properties"/>
<entry key="passwordCallbackRef"
value-ref="serviceKeystorePasswordClass"/>
</map>
</constructor-arg>
</bean>
<bean id="wss4jOutInterceptor"
class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature
Encrypt"/>
<entry key="user" value="myservicekey"/>
<entry key="signaturePropFile"
value="serviceKeystore.properties"/>
<entry key="encryptionPropFile"
value="serviceKeystore.properties"/>
<entry key="encryptionUser" value="useReqSigCert"/>
<entry key="signatureKeyIdentifier"
value="DirectReference"/>
<entry key="passwordCallbackRef"
value-ref="serviceKeystorePasswordClass"/>
<entry key="signatureParts"
value="{Element}{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss
-wssecurity-utility-1.0.xsd}Timestamp;{Element}{http://schemas.xmlsoap.o
rg/soap/envelope/}Body"/>
<entry key="encryptionParts"
value="{Element}{http://www.w3.org/2000/09/xmldsig#}Signature;{Content}{
http://schemas.xmlsoap.org/soap/envelope/}Body"/>
<entry key="encryptionSymAlgorithm"
value="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
</map>
</constructor-arg>
</bean>
Colm O hEigeartaigh wrote:
>
>
> Could you attach the WSS4J config you're using on both the client and
> server side?
>
> Colm.
>
>
>
--
View this message in context:
http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-
for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-cli
ent-scenario.-tp22745189p22782797.html
Sent from the cxf-dev mailing list archive at Nabble.com.
RE: WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
Posted by santhosh00724 <sa...@gmail.com>.
My Client Config :
<bean id="wss4jOut"
class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature Encrypt"/>
<entry key="user" value="myclientkey"/>
<entry key="signaturePropFile"
value="clientKeystore.properties"/>
<entry key="encryptionPropFile"
value="clientKeystore.properties"/>
<entry key="encryptionUser" value="myclientkey"/>
<entry key="signatureKeyIdentifier"
value="DirectReference"/>
<entry key="passwordCallbackRef"
value-ref="clientKeystorePassword"/>
<!--<entry key="passwordCallbackClass"
value="edu.osu.oit.peoplesoft.webservice.ClientKeystorePasswordCallback"/>-->
<entry key="signatureParts"
value="{Element}{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd}Timestamp;{Element}{http://schemas.xmlsoap.org/soap/envelope/}Body"/>
<entry key="encryptionParts"
value="{Element}{http://www.w3.org/2000/09/xmldsig#}Signature;{Content}{http://schemas.xmlsoap.org/soap/envelope/}Body"/>
<entry key="encryptionSymAlgorithm"
value="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
</map>
</constructor-arg>
</bean>
<bean id="wss4jIn"
class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor" >
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature Encrypt"/>
<entry key="signaturePropFile"
value="clientKeystore.properties"/>
<entry key="decryptionPropFile"
value="clientKeystore.properties"/>
<entry key="passwordCallbackRef"
value-ref="clientKeystorePassword"/>
</map>
</constructor-arg>
</bean>
Service Configurations:
<bean id="wss4jInterceptor"
class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature Encrypt"/>
<entry key="signaturePropFile"
value="serviceKeystore.properties"/>
<entry key="decryptionPropFile"
value="serviceKeystore.properties"/>
<entry key="passwordCallbackRef"
value-ref="serviceKeystorePasswordClass"/>
</map>
</constructor-arg>
</bean>
<bean id="wss4jOutInterceptor"
class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature Encrypt"/>
<entry key="user" value="myservicekey"/>
<entry key="signaturePropFile"
value="serviceKeystore.properties"/>
<entry key="encryptionPropFile"
value="serviceKeystore.properties"/>
<entry key="encryptionUser" value="useReqSigCert"/>
<entry key="signatureKeyIdentifier"
value="DirectReference"/>
<entry key="passwordCallbackRef"
value-ref="serviceKeystorePasswordClass"/>
<entry key="signatureParts"
value="{Element}{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd}Timestamp;{Element}{http://schemas.xmlsoap.org/soap/envelope/}Body"/>
<entry key="encryptionParts"
value="{Element}{http://www.w3.org/2000/09/xmldsig#}Signature;{Content}{http://schemas.xmlsoap.org/soap/envelope/}Body"/>
<entry key="encryptionSymAlgorithm"
value="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
</map>
</constructor-arg>
</bean>
Colm O hEigeartaigh wrote:
>
>
> Could you attach the WSS4J config you're using on both the client and
> server side?
>
> Colm.
>
>
>
--
View this message in context: http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-client-scenario.-tp22745189p22782797.html
Sent from the cxf-dev mailing list archive at Nabble.com.
RE: WSSecurityEngine: Callback supplied no password for: null when using useReqSigCert for encryptionUser in multiple client scenario.
Posted by Colm O hEigeartaigh <co...@progress.com>.
Could you attach the WSS4J config you're using on both the client and
server side?
Colm.
-----Original Message-----
From: santhosh00724 [mailto:santhosh00724@gmail.com]
Sent: 27 March 2009 17:30
To: dev@cxf.apache.org
Subject: WSSecurityEngine: Callback supplied no password for: null when
using useReqSigCert for encryptionUser in multiple client scenario.
I am getting following error while running a service with multiple
clients
with "Timestamp Signature Encrypt " action for the interceptor & <entry
key="encryptionUser" value="useReqSigCert"/>
It works fine for single client scenario. but not for multiple clients.
I
looked into many mailing lists but couldn't find any information. It is
a
two way encryption on both service & client side.
Environment :
Tomcat, CXF 2.1.3.
Mar 24, 2009 12:40:29 PM
org.apache.cxf.transport.servlet.AbstractCXFServlet
replaceDestinationFactory
INFO: Servlet transport factory already registered
Mar 24, 2009 12:40:29 PM
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor
handleMessage
WARNING:
org.apache.ws.security.WSSecurityException: General security error
(WSSecurityEngine: Callback supplied no password for: null)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKe
y(EncryptedKeyProcessor.java:285)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKe
y(EncryptedKeyProcessor.java:92)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(Encry
ptedKeyProcessor.java:80)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurity
Engine.java:311)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurity
Engine.java:228)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JI
nInterceptor.java:158)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JI
nInterceptor.java:65)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorC
hain.java:220)
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiati
onObserver.java:78)
at
org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestin
ation.java:92)
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(Ser
vletController.java:285)
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletControl
ler.java:168)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFSe
rvlet.java:175)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFSe
rvlet.java:153)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applica
tionFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilt
erChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValv
e.java:233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValv
e.java:191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java
:128)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java
:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.
java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:2
86)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:84
5)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(
Http11Protocol.java:583)
at
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
Mar 24, 2009 12:40:30 PM org.apache.cxf.phase.PhaseInterceptorChain
doIntercept
INFO: Interceptor has thrown exception, unwinding now
org.apache.cxf.binding.soap.SoapFault: General security error
(WSSecurityEngine: Callback supplied no password for: null)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.createSoapFault(WSS4
JInInterceptor.java:407)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JI
nInterceptor.java:256)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JI
nInterceptor.java:65)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorC
hain.java:220)
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiati
onObserver.java:78)
at
org.apache.cxf.transport.servlet.ServletDestination.invoke(ServletDestin
ation.java:92)
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(Ser
vletController.java:285)
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletControl
ler.java:168)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.invoke(AbstractCXFSe
rvlet.java:175)
at
org.apache.cxf.transport.servlet.AbstractCXFServlet.doPost(AbstractCXFSe
rvlet.java:153)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applica
tionFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilt
erChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValv
e.java:233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValv
e.java:191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java
:128)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java
:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.
java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:2
86)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:84
5)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(
Http11Protocol.java:583)
at
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
Caused by: org.apache.ws.security.WSSecurityException: General security
error (WSSecurityEngine: Callback supplied no password for: null)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKe
y(EncryptedKeyProcessor.java:285)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKe
y(EncryptedKeyProcessor.java:92)
at
org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(Encry
ptedKeyProcessor.java:80)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurity
Engine.java:311)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurity
Engine.java:228)
at
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JI
nInterceptor.java:158)
... 22 more
Mar 24, 2009 12:51:09 PM org.apache.coyote.http11.Http11Protocol pause
--
View this message in context:
http://www.nabble.com/WSSecurityEngine%3A-Callback-supplied-no-password-
for%3A-null--when-using-useReqSigCert-for-encryptionUser-in-multiple-cli
ent-scenario.-tp22745189p22745189.html
Sent from the cxf-dev mailing list archive at Nabble.com.